Lucene search
HistoryFeb 14, 2012 - 10:55 p.m.
CVE-2012-0011
microsoft
internet explorer
cve-2012-0011
rce
memory object handling
vulnerability
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.965 High
EPSS
Percentile
99.6%
Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, aka βHTML Layout Remote Code Execution Vulnerability.β
Affected configurations
Node
microsoftinternet_explorerMatch7
microsoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch8
microsoftwindows_7Match-
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_server_2003Match-sp2
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_vistaMatch-sp2
ORmicrosoftwindows_xpMatch-sp2professionalx64
ORmicrosoftwindows_xpMatch-sp3
Node
microsoftinternet_explorerMatch9
microsoftwindows_7Match-
ORmicrosoftwindows_7Match-sp1
ORmicrosoftwindows_server_2008Match-sp2
ORmicrosoftwindows_server_2008Matchr2
ORmicrosoftwindows_server_2008Matchr2sp1
ORmicrosoftwindows_vistaMatch-sp2
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:internet_explorer | microsoft internet explorer | eq | 7 |
Related
checkpoint_advisories
checkpoint_advisories
Internet Explorer HtmlLayout Remote Code Execution (MS12-010; CVE-2012-0011)
2012-02-14 00:00:00
cvelist
cvelist
CVE-2012-0011
2012-02-14 22:00:00
prion
prion
Remote code execution
2012-02-14 22:55:00
securityvulns
securityvulns
nvd
nvd
CVE-2012-0011
2012-02-14 22:55:01
zdi
zdi
seebug
seebug
mskb
mskb
openvas
openvas
Microsoft Internet Explorer Multiple Vulnerabilities (2647516)
2012-02-15 00:00:00
Microsoft Internet Explorer Multiple Vulnerabilities (2647516)
2012-02-15 00:00:00
nessus
nessus
MS12-010: Cumulative Security Update for Internet Explorer (2647516)
2012-02-14 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
8 High
AI Score
Confidence
Low
0.965 High
EPSS
Percentile
99.6%
Related for CVE-2012-0011